Data Protection Compliance
Dear Independent Agricultural Appeals Panel,
1. Does your organisation use any applications or software to record Record of Processing Activity (ROPA)?
If so, please state the product name(s) and version numbers(s) (if known)
2. Does your organisation use any applications or software to support preparation for, or maintenance of ISO 27001 and/or ISO 27701 compliance?
If so, please state the product name(s) and version numbers(s) (if known)
3. Does your organisation use any applications or software associated with data breach management?
4. Does your organisation use any applications or software associated with Freedom of Information management?
If so, please state the product name(s) and version numbers(s) (if known)
5. Does your organisation use any applications or software for Policy Management?
If so, please state the product name(s) and version numbers(s) (if known)
6. Does your organisation use any eLearning for Data Protection and Security Awareness?
If so, please state the product name(s) and version numbers(s) (if known)
7. Has your organisation reviewed / explored the market regarding the provision of technology which supports the delivery of Information Governance functions?
If yes - please specify what actions have been taken?
If no - does your organisation have any plans to review / explore this market in the next 3 years?
8. Has your organisation allocated budget / financial resources regarding the commissioning / procurement of technology which supports the delivery of Information Governance functions?
If yes - please specify what actions have been taken?
If no - does your organisation have any plans to allocate budget / financial resources in the next 3 years?
9. Has your organisation developed a business case (outline or otherwise) regarding the commissioning / procurement of technology which supports the delivery of Information Governance functions?
If yes - please specify what actions have been taken?
If no - does your organisation have any plans to develop a business case in the next 3 years?
10. Will there be any opportunities to engage with your organisation regarding the commissioning / procurement of technology which supports the delivery of Information Governance function in the next three years?
Yours faithfully,
Connor Dash
18 September 2023
Our ref: RFI 6700
Dear Connor Dash,
Freedom of Information Act – Advice and Assistance
Thank you for your request for information received by the Rural Payments
Agency (RPA) on 8 September, which is being considered under the Freedom
of Information Act 2000 (FoIA).
Please accept our apologies for the delay in responding to you.
You have asked the following questions addressed to the Independent
Agricultural Appeals Panel (IAAP):
1. Does your organisation use any applications or software to record
Record of Processing Activity (ROPA)?
If so, please state the product name(s) and version numbers(s) (if known)
1. Does your organisation use any applications or software to support
preparation for, or maintenance of ISO 27001 and/or ISO 27701
compliance?
If so, please state the product name(s) and version numbers(s) (if known)
1. Does your organisation use any applications or software associated
with data breach management?
1. Does your organisation use any applications or software associated
with Freedom of Information management?
If so, please state the product name(s) and version numbers(s) (if known)
1. Does your organisation use any applications or software for Policy
Management?
If so, please state the product name(s) and version numbers(s) (if known)
1. Does your organisation use any eLearning for Data Protection and
Security Awareness?
If so, please state the product name(s) and version numbers(s) (if known)
1. Has your organisation reviewed / explored the market regarding the
provision of technology which supports the delivery of Information
Governance functions?
If yes - please specify what actions have been taken?
If no - does your organisation have any plans to review / explore this
market in the next 3 years?
1. Has your organisation allocated budget / financial resources regarding
the commissioning / procurement of technology which supports the
delivery of Information Governance functions?
If yes - please specify what actions have been taken?
If no - does your organisation have any plans to allocate budget /
financial resources in the next 3 years?
1. Has your organisation developed a business case (outline or otherwise)
regarding the commissioning / procurement of technology which supports
the delivery of Information Governance functions?
If yes - please specify what actions have been taken?
If no - does your organisation have any plans to develop a business case
in the next 3 years?
1. Will there be any opportunities to engage with your organisation
regarding the commissioning / procurement of technology which supports
the delivery of Information Governance function in the next three
years?
From our preliminary assessment, it is clear that we will not be able to
answer your request without further clarification. Section 16 FoIA
requires public authorities to provide advice and assistance to applicants
where reasonable.
What you need to do
To advise, the Independent Agricultural Appeals Panel (IAAP) is a
collection of independent individuals who apply to RPA to sit on the panel
to consider appeals against decisions made by RPA. They are not a separate
body, and as such they do not use any systems or technology as described
in their own right. Any IAAP processing of data is part of RPA’s
processing.
If you require the requested information in relation to RPA, please
confirm in response.
Once we have received the above information, we will be able to proceed
with your request and advise whether we can provide the information.
Please note that the 20 working day timescale for responding to your
request will commence from the date that we receive the clarification.
If you need further information
If you have any questions about this email, you can contact us by email
[1][Independent Agricultural Appeals Panel request email].
You can find more information on how we handle personal data in our
[2]Personal Information Charter and [3]RPA Customer Privacy notices on
[4]GOV.UK
Yours sincerely
Information Rights Team
Rural Payments Agency | Eden Bridge House | Lowther Street | Carlisle |
CA3 8DX
Tel: 03300 416502 | Email: [5][email address]
Follow us on Twitter @Ruralpay
About this email
This email has been sent to you because the email address has been
provided to us. If you no longer wish to be contacted electronically,
please let us know. If you have done this recently, please allow for this
to take effect.
Security
Please be on your guard against emails that request any of your security
details. We will never ask you by email to enter (or record) these
details. If you receive an email like this, you should not respond.
Legal
This email message is confidential and for use by the addressee only. If
the message is received by anyone other than the addressee, please delete
it from your computer.
The Rural Payments Agency does not accept responsibility for changes made
to this message after it was sent.
While all reasonable care has been taken to avoid the transmission of
viruses, it is your responsibility to ensure that onward transmission,
opening or use of this message and any attachments will not adversely
affect your systems or data. No responsibility is accepted by the Rural
Payments Agency in this regard, and you should carry out appropriate virus
and other checks.
References
Visible links
1. mailto:[Independent Agricultural Appeals Panel request email]
2. https://www.gov.uk/government/organisati...
3. https://www.gov.uk/guidance/rpa-privacy-...
4. https://www.gov.uk/government/organisati...
5. mailto:[email address]
We work to defend the right to FOI for everyone
Help us protect your right to hold public authorities to account. Donate and support our work.
Donate Now